PagerDuty Event Management Integrations
Features
- You can configure Skylar Automated RCA to automatically add Root Cause (RCA) reports to events in PagerDuty. This allows you to see details of root cause and direct the event to the appropriate team.
- Each Skylar Automated RCA report includes a summary, a word cloud, and a set of log events showing symptoms and root cause, plus a link to the full report in the Skylar Automated RCA user interface.
- This leads to faster Mean Time to Repair (MTTR) and less time manually hunting for root cause.
How it Works
The recommended mode of operation for event management integrations is to use the Skylar Automated RCA Augment mode as an accurate mechanism for explaining the reason something went wrong. In this mode, you continue to use your existing rules as the primary source of problem detection and event creation. You can then review Skylar Automated RCA report findings directly in the event that was created by PagerDuty to explain the reason behind the event.
The Skylar Automated RCA Auto-Detect mode is useful when you want to direct all Root Cause reports to PagerDuty for routing and dispositioning. You can also use Auto-Detect mode when you want to send only specific Root Cause reports to PagerDuty after first reviewing them in the Skylar Automated RCA user interface.
The two modes of operation are independent. You can configure Augment and/or Auto-Detect modes depending on your operational use-case.
Augment: Receive Signals from PagerDuty Events
- Any PagerDuty event can trigger a webhook request for Root Cause Analysis from Skylar Automated RCA.
- Skylar Automated RCA finds anomalous log patterns from your application that coincide with the event and creates a Root Cause report.
- Root Cause report summaries are sent to PagerDuty using the notes API, and Root Cause details are visible in your PagerDuty Event.
- With a single click on your event, you can drill down further into the Skylar Automated RCA user interface to look at correlated logs across your entire application.
For details, see Receiving Signals from PagerDuty.
Auto-Detect: Send Root Cause Detections to PagerDuty as Events
- The Skylar AI continuously monitors all application logs and uses unsupervised machine learning to find anomalous log patterns that indicate a problem. These are automatically turned into Root Cause reports highlighting details of any problems with over 95% accuracy.Root Cause report summaries are sent to PagerDuty using the webhook interface, and the Root Cause details are visible as events in PagerDuty.
- With a single click on your event, you can drill down further into the Skylar Automated RCA user interface to look at correlated logs across your entire application.
For details, see Sending Root Cause Detections to PagerDuty as Events.
Receiving Signals from PagerDuty
STEP 1: Configure API Access for Skylar Automated RCA in PagerDuty
- In the PagerDuty user interface, go to the Integrations menu and select API Access.
- Click the button.
- Enter a description, such as "Skylar Event Detection".
- Make sure that the Read-only API Key option is not selected.
- Click .
- Copy the API Key and save it for STEP 2. The key will not be visible in PagerDuty again.
STEP 2: Create a PagerDuty Integration in Skylar Automated RCA to Receive Signals from PagerDuty
- In the Skylar Automated RCA user interface, go to the Integrations & Collectors page (Settings () > Integrations & Collectors).
- In the Event Management section, click the button in the Incident Management section.
- Click Create PagerDuty Event Management dialog appears. button. The
- On the Integration Name for this integration. tab, enter an
- In the Deployment drop-down, select a deployment for the integration.
- In the Service Group(s) drop-down, select a service group for the integration.
- On the tab, click .
- Enter the Username for your PagerDuty portal.
- Enter the API Key that you created in STEP 1, above.
- Click Your URL dialog appears. . The
- Copy the Webhook URL and save it for use in STEP 3, below.
- Click .
STEP 3: Add the Skylar Automated RCA Webhook to PagerDuty
- n the PagerDuty user interface, go to the Integrations menu and select select Generic Webhooks (v3).
- Click the button.
- In the WEBHOOK URL area, paste the Skylar Automated RCA Webhook URL that was copied in STEP 2 when configuring access for PagerDuty in Skylar Automated RCA.
- In the SCOPE TYPE drop-down, select Service.
- In the SCOPE drop-down, select the desired service to which you want to add the Skylar Automated RCA webhook.
- Enter a DESCRIPTION, such as "Skylar Automated RCA Signal".
- In the EVENT SUBSCRIPTION field, select event.triggered. Clear all other checkboxes.
- Click the button.
How to Uninstall
Disable API Access in PagerDuty
- In the PagerDuty user interface, go to the Integrations menu and select API Access.
- Click Disable or Remove on the API Access Key you want to delete.
- Click the button after confirming you wish to proceed.
Delete the Skylar Automated RCA Integration
- In the Skylar Automated RCA user interface, go to the Integrations & Collectors page (Settings () > Integrations & Collectors).
- In the Event Management section, click the button.
- Click the delete icon () next to the Skylar Automated RCA integration that you want to delete.
- Click after confirming you wish to proceed.
Sending Root Cause Detections to PagerDuty as Events
This integration automatically sends Root Cause (RCA) reports to PagerDuty so that the appropriate team is notified when the Skylar AI auto-detects an event .
STEP 1: Create an Integration Key in PagerDuty
- In the PagerDuty user interface, go to an existing or create a new Event Orchestration or Event Rule under the Automation menu item.
-
Under Integrations associated with the Event Orchestration or Rule, copy the corresponding Integration Key for STEP 2, below.
STEP 2: Create a PagerDuty Integration in Skylar Automated RCA
- In the Skylar Automated RCA user interface, go to the Integrations & Collectors page (Settings () > Integrations & Collectors).
- In the Incident Management section, click the button.
- Click Create PagerDuty Event Management dialog appears. button. The
- On the Integration Name for this integration. tab, enter an
- In the Deployment drop-down, select a deployment for the integration.
- In the Service Group(s) drop-down, select a service group for the integration.
- On the Create a PagerDuty Integration in Skylar Automated RCA to Receive Signals from PagerDuty, above. tab, click . You might need to complete the tab before you can go to the next step. For more information, see
- In the Integration Key field, paste the Integration Key that you saved from STEP 1, above.
- You can choose to send notifications the first time the Skylar AI detects a new type of proactive Root Cause report. We recommend setting the Send on 1st occurrence toggle to Yes for proactive notification of potential new problems. If you want to be notified on subsequent occurrences, do this from the relevant Root Cause report.
- After you update this tab, you can click Alerts page. to test your settings. If your settings were correct, a sample alert will display on the
- Click .